The (Information Systems Audit and Control Association) ISACA defines information security as something that: “Ensures that within the enterprise, information is protected against disclosure to unauthorized users (confidentiality), improper modification (integrity) and non-access when required (availability)”. Cyber security has the same meaning, just with more focus on the internet, though the connection between cyber security and physical security is important. All assets connected to the internet have physical servers sitting in their office or the data center building of a third party provider like Amazon Web Services.
Our cyber security consulting services cover these areas:
- CISO / CIO On Demand
- Board and Executive Reporting
- Physical to Cyber Security Assessments
- IT Governance Maturity
- Incident Response Planning
- Assessment Services (FFIEC, HIPAA, NIST)
- Social Engineering
- Data Center Assessments (Physical and Cyber)
- Segregation of Duties Reviews
- IAM (Identity and Access Management) Reviews
- Conduct the Dept of Homeland Security’s CSET (Cyber Security Evaluation Tool)
- Defense In Depth Assessments
- Draft or Review Security and Compliance Policy and Procedures
- Organizational Culture to Security Assessments
- Backup, Business Continuity, and Recovery
- M&A Assessments
- Framework Alignment
- Vendor Tool Selection Review
- Rank Security Applications for Attainment, Remediation, or Decommission
- Gather Cyber Intelligence Concerning Likely Threats